Jazz Reporting Service@7.0.2 Security Vulnerabilities and Issues — Jazz Reporting Service@7.0.2 CVE List

Lucene search

IbmJazz Reporting Service7.0.2

3 matches found

CVE•added 2025/04/02 3:15 p.m.•43 views

CVE-2024-25051

IBM Jazz Reporting Service 7.0.2 and 7.0.3 does not invalidate session after logout which could allow an authenticated privileged user to impersonate another user on the system.

7.2CVSS6.7AI score0.00057EPSS

CVE•added 2021/02/18 3:15 p.m.•35 views

CVE-2020-4933

IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Fo...

5.4CVSS5.2AI score0.00187EPSS

CVE•added 2021/05/13 4:15 p.m.•30 views

CVE-2021-20535

IBM Jazz Reporting Service 6.0.6.1, 7.0, 7.0.1, and 7.0.2 is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to network enumeration or facilitating other attacks. IBM X-Force ID: 198834.

6.5CVSS5.3AI score0.00094EPSS